Data analysis
Asia-Pacific cyber threats: volume vs insurance severity
Each bubble is one of the top five cybercrime types ranked by INTERPOL across 18 member countries. Horizontal: case volume. Vertical: insurance claims severity. Bubble size: pace of escalation. Hover for detail.
High vol / High severity High severity / Lower vol Moderate severity / High vol Emerging / Accelerating
Ransomware avg claim
$508,000
+16% YoY · At-Bay 2025
Scam centre losses
~$40bn/yr
UNODC est · INTERPOL
Deepfake forum activity
+600%
Feb–Jun 2024 · INTERPOL
Sources: INTERPOL Asia and South Pacific Cyber Threat Assessment 2025/2026; Willis Cyber Claims in Focus 2026; DUAL Global Cyber Outlook April 2026; At-Bay 2025 Cyber Claims Report; Aon APAC Cyber Risk Report 2025; UNODC TOC Convergence Report 2024. Axis positions are indicative indices.
The named threat actors are already in American networks
INTERPOL’s report identifies the most active malware families in the region following Operation Secure, its February 2025 joint operation involving 26 countries. LummaC2, described as the world’s largest infostealer and available as a malware-as-a-service product since 2022, was the subject of a joint disruption effort by Europol, Microsoft, and Japan’s Cybercrime Control Centre in May 2025. Europol confirmed the takedown of the infostealer’s infrastructure – a significant intervention, but one that addresses a specific operator rather than the ecosystem from which it emerged.
